odiannews.in/
212.227.191.17301 Moved Permanently 162 B IP 212.227.191.17:0
File type HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Hash 4f8e702cc244ec5d4de32740c0ecbd97
3adb1f02d5b6054de0046e367c1d687b6cdf7aff
9e17cb15dd75bbbd5dbb984eda674863c3b10ab72613cf8a39a00c3e11a8492a
GET / HTTP/1.1
Host: odiannews.in
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 301 Moved Permanently
Server: nginx
Date: Sun, 04 Sep 2022 19:42:18 GMT
Content-Type: text/html
Content-Length: 162
Connection: keep-alive
Location: https://odiannews.in/
firefox.settings.services.mozilla.com/v1/
143.204.55.35200 OK 939 B URL HTTP/1.1 firefox.settings.services.mozilla.com/v1/
IP 143.204.55.35:0
File type JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Hash b593eb39329cfe060d55be5e4a5405e2
78e46c1028e9f94f8569303ad2d90d7df13a059a
08a810103557efe55ca4425ff0cf82593f1f54633df899127eaec9bee05d4d04
GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: application/json
Content-Length: 939
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Expose-Headers: Retry-After, Alert, Content-Length, Content-Type, Backoff
Content-Security-Policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
Date: Sun, 04 Sep 2022 18:44:19 GMT
Strict-Transport-Security: max-age=31536000
X-Content-Type-Options: nosniff
X-Cache: Hit from cloudfront
Via: 1.1 1ca0323262515c9240c58fe69a9ac826.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: kf4n8m77n9QSBc9CJhgZYGF-Rniy3nGkDRLMHWOfkFvjJAsc9QdCmg==
Age: 3479
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash d931e0142ef5ffe9cdb4c4c6bfcb9bc9
d9c4caf525e8926b042a14f38d374cc4033ed768
f610984fb0a75b3a31424faa860cbc8172c7f21804df1dc14fbb685b7c456f29
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "F610984FB0A75B3A31424FAA860CBC8172C7F21804DF1DC14FBB685B7C456F29"
Last-Modified: Sat, 03 Sep 2022 23:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=3297
Expires: Sun, 04 Sep 2022 20:37:15 GMT
Date: Sun, 04 Sep 2022 19:42:18 GMT
Connection: keep-alive
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-10-09-23-18-04.chain
143.204.55.49200 OK 5.3 kB URL HTTP/2 content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-10-09-23-18-04.chain
IP 143.204.55.49:0
File type PEM certificate\012- , ASCII text
Hash 742edb4038f38bc533514982f3d2e861
cc3a20c8dc2a8c632ef9387a2744253f1e3fdef1
b6bfa49d3d135035701231db2fffc0c0643444394009a94c6a1b4d829d6b8345
GET /chains/remote-settings.content-signature.mozilla.org-2022-10-09-23-18-04.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: binary/octet-stream
content-length: 5348
last-modified: Sat, 20 Aug 2022 23:18:05 GMT
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
date: Sun, 04 Sep 2022 01:15:18 GMT
etag: "742edb4038f38bc533514982f3d2e861"
x-cache: Hit from cloudfront
via: 1.1 bcd5dadccb0831729969c938747ff79a.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: xfrlUGoZh26T3ZzdUoZV1MSyDeK1aGo-5ikYoenvzo7lC6f-ib1Y6g==
age: 66421
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 0e86b10423b4581d832e0a71ace6928d
fb36b96dc4ffd32613d2a10980c48a2d561cf4a8
94c78ec3793f3b934814fa09783837b137712ea5c34be7e131a25b4be12e7b4e
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "94C78EC3793F3B934814FA09783837B137712EA5C34BE7E131A25B4BE12E7B4E"
Last-Modified: Sun, 04 Sep 2022 10:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=7187
Expires: Sun, 04 Sep 2022 21:42:05 GMT
Date: Sun, 04 Sep 2022 19:42:18 GMT
Connection: keep-alive
contile.services.mozilla.com/v1/tiles
34.117.237.239200 OK 12 B URL HTTP/2 contile.services.mozilla.com/v1/tiles
IP 34.117.237.239:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Sun, 04 Sep 2022 19:42:18 GMT
content-type: application/json
content-length: 12
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
odiannews.in/
212.227.191.17301 Moved Permanently 230 B IP 212.227.191.17:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash 8c74329513b3bc85cc60bb651f077d98
b4d3f7a581ad5516407b407f0f94ce8efbc3b3d5
36a1888f919b574e98e06ea81f885ab72ea2ecb25b3b395df0cd8da7b93637dd
GET / HTTP/1.1
Host: odiannews.in
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1
HTTP/2 301 Moved Permanently
server: nginx
date: Sun, 04 Sep 2022 19:42:18 GMT
content-type: text/html; charset=iso-8859-1
content-length: 230
location: https://odiannews.com/
x-powered-by: PleskLin
X-Firefox-Spdy: h2
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
143.204.55.35200 OK 329 B URL HTTP/1.1 firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP 143.204.55.35:0
File type JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Hash 0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: application/json
Content-Length: 329
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Expose-Headers: Retry-After, ETag, Backoff, Last-Modified, Pragma, Cache-Control, Expires, Content-Type, Content-Length, Alert
Content-Security-Policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
Last-Modified: Fri, 25 Mar 2022 17:45:46 GMT
Strict-Transport-Security: max-age=31536000
X-Content-Type-Options: nosniff
Cache-Control: max-age=3600
Date: Sun, 04 Sep 2022 19:38:16 GMT
Expires: Sun, 04 Sep 2022 20:06:12 GMT
ETag: "1648230346554"
X-Cache: Hit from cloudfront
Via: 1.1 6a757ab2991da716151f94ca00b38098.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: rRok_SZrkjb-RIMNzVP7WrDlqQLEtMHD-sQiL5NT39oVAN7kNM46uw==
Age: 242
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 77d035f38a45e8a1ec30d5fe9611880b
01cf34de95257da64dac90edf5a86203f1160271
7dc687d6bb1679ba5567e58b4f8c1e78766e7ee36273ba7f62068c595d57f7f3
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 3511
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Sun, 04 Sep 2022 19:42:19 GMT
Last-Modified: Sun, 04 Sep 2022 18:43:48 GMT
Server: ECS (ska/F719)
X-Cache: HIT
Content-Length: 471
odiannews.com/wp-content/uploads/2020/07/cropped-odianews-1.png
212.227.191.17200 OK 19 kB URL HTTP/2 odiannews.com/wp-content/uploads/2020/07/cropped-odianews-1.png
IP 212.227.191.17:0
File type PNG image data, 249 x 83, 8-bit/color RGBA, non-interlaced\012- data
Hash 9e0cb9facb1940162049b2844a0383d0
83a0c8ff50df7fe6752002d03451fa7bfb430c74
d85531441e35ca567904ac7919bb3993eb5a714a4c6596b5f8fd15585ec3bc73
GET /wp-content/uploads/2020/07/cropped-odianews-1.png HTTP/1.1
Host: odiannews.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://odiannews.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 04 Sep 2022 19:42:19 GMT
content-type: image/png
content-length: 18814
last-modified: Sun, 12 Jul 2020 06:41:11 GMT
etag: "5f0ab087-497e"
strict-transport-security: max-age=15768000; includeSubDomains
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2
odiannews.com/wp-includes/js/mediaelement/mediaelementplayer-legacy.min.css?ver=4.2.16
212.227.191.17200 OK 2.8 kB URL HTTP/2 odiannews.com/wp-includes/js/mediaelement/mediaelementplayer-legacy.min.css?ver=4.2.16
IP 212.227.191.17:0
File type ASCII text, with very long lines (11256), with no line terminators
Hash f66df17006b37d5b80fd75b98bf1b188
d431ae1b1e83919becb086a5f842f1e1f20dc57e
f1c7136cde42fb36ef8c4105d689c523fdad37dd7e9558fa1227c79dd4abef20
Analyzer Verdict Alert fortinet Phishing
GET /wp-includes/js/mediaelement/mediaelementplayer-legacy.min.css?ver=4.2.16 HTTP/1.1
Host: odiannews.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://odiannews.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 04 Sep 2022 19:42:19 GMT
content-type: text/css
last-modified: Sun, 26 Sep 2021 07:42:00 GMT
etag: W/"61502448-2bf8"
strict-transport-security: max-age=15768000; includeSubDomains
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
odiannews.com/wp-includes/css/dist/block-library/style.min.css?ver=5.9.4
212.227.191.17200 OK 11 kB URL HTTP/2 odiannews.com/wp-includes/css/dist/block-library/style.min.css?ver=5.9.4
IP 212.227.191.17:0
File type ASCII text, with very long lines (39791)
Hash 64e6f2ca8a4025929b65042d51c07134
f7a5cee505bd4ee2b5cdae42972dfcc4d7806f11
0d7fbbf492c28a59bae29cd83fddefea27721e0518726cc0dfe9b1c73e8b65a6
GET /wp-includes/css/dist/block-library/style.min.css?ver=5.9.4 HTTP/1.1
Host: odiannews.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://odiannews.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 04 Sep 2022 19:42:19 GMT
content-type: text/css
last-modified: Wed, 06 Apr 2022 03:55:06 GMT
etag: W/"624d0f1a-145db"
strict-transport-security: max-age=15768000; includeSubDomains
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
odiannews.com/wp-content/plugins/gallery-videos/CSS/Total-Soft-Gallery-Video-Widget.css?ver=5.9.4
212.227.191.17200 OK 4.3 kB URL HTTP/2 odiannews.com/wp-content/plugins/gallery-videos/CSS/Total-Soft-Gallery-Video-Widget.css?ver=5.9.4
IP 212.227.191.17:0
File type ASCII text, with very long lines (630), with CRLF line terminators
Hash 3e430151c7e06e0c1ff34fdc27856d59
d07251eb4d6373995a9dd384a66e5a43921c50ec
fc99be45846ad748ccb9120795f1b54da9330a854910553fc008f5cbbb21d326
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/gallery-videos/CSS/Total-Soft-Gallery-Video-Widget.css?ver=5.9.4 HTTP/1.1
Host: odiannews.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://odiannews.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 04 Sep 2022 19:42:19 GMT
content-type: text/css
last-modified: Wed, 24 Aug 2022 15:55:06 GMT
etag: W/"630649da-c9b9"
strict-transport-security: max-age=15768000; includeSubDomains
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
www.googletagmanager.com/gtag/js?id=UA-107754389-1
142.250.74.72200 OK 42 kB URL HTTP/2 www.googletagmanager.com/gtag/js?id=UA-107754389-1
IP 142.250.74.72:0
File type ASCII text, with very long lines (1615)
Hash 1773921c8a510c820e5a5fa61b3ca224
a99c0358644a0d9177e7e0312c642742bbe76806
99ccd49b1ae1b61475b4a101ec81a50a5b2fd23174fe3b0c2bd12b6a4d6263e9
GET /gtag/js?id=UA-107754389-1 HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://odiannews.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Sun, 04 Sep 2022 19:42:19 GMT
expires: Sun, 04 Sep 2022 19:42:19 GMT
cache-control: private, max-age=900
last-modified: Sun, 04 Sep 2022 18:00:00 GMT
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 41912
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
push.services.mozilla.com/
34.210.39.83101 Switching Protocols 0 B URL HTTP/1.1 push.services.mozilla.com/
IP 34.210.39.83:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: kyan5AyMujYlYVV62DrUkQ==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: 8q8wSIWSFXKbF/0aHkfcgU0gXdc=
odiannews.com/wp-content/themes/newscard/assets/library/match-height/jquery.matchHeight-min.js?ver=0.7.2
212.227.191.17200 OK 2.4 kB URL HTTP/2 odiannews.com/wp-content/themes/newscard/assets/library/match-height/jquery.matchHeight-min.js?ver=0.7.2
IP 212.227.191.17:0
File type ASCII text, with very long lines (521)
Hash aedb97f94c9244bb0b316363fab68696
09d8a7b74033ed0b47e1f103ff4285010ff5bf79
b6d43d00ebba5023178c13c162c894db329ba09620f192ab411276fe0ee58f2e
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/newscard/assets/library/match-height/jquery.matchHeight-min.js?ver=0.7.2 HTTP/1.1
Host: odiannews.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://odiannews.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 04 Sep 2022 19:42:19 GMT
content-type: application/javascript
last-modified: Tue, 15 Feb 2022 17:12:32 GMT
etag: W/"620bdf00-d34"
strict-transport-security: max-age=15768000; includeSubDomains
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
odiannews.com/wp-content/plugins/gallery-videos/CSS/totalsoft.css?ver=5.9.4
212.227.191.17200 OK 7.2 kB URL HTTP/2 odiannews.com/wp-content/plugins/gallery-videos/CSS/totalsoft.css?ver=5.9.4
IP 212.227.191.17:0
File type ASCII text, with very long lines (387)
Hash 993681d90e744b19cc90715aaffa4ae8
9378777ea241a66149b99e4057a6cea69f56c939
b291dddd187e4cf5e971f8506943315203331160eddaef7d10bddf0571e2f3ee
GET /wp-content/plugins/gallery-videos/CSS/totalsoft.css?ver=5.9.4 HTTP/1.1
Host: odiannews.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://odiannews.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 04 Sep 2022 19:42:19 GMT
content-type: text/css
last-modified: Wed, 24 Aug 2022 15:55:06 GMT
etag: W/"630649da-9eae"
strict-transport-security: max-age=15768000; includeSubDomains
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
odiannews.com/wp-content/plugins/menu-image/includes/css/menu-image.css?ver=3.0.8
212.227.191.17200 OK 1.2 kB URL HTTP/2 odiannews.com/wp-content/plugins/menu-image/includes/css/menu-image.css?ver=3.0.8
IP 212.227.191.17:0
Hash 96810b17e734fbb330f4ced5bd897eb5
a8927a46dbb3166f8d88f5276b0a328ae53b4a7f
48ac3888e6f0960b6332c419440de81910e23cbfa4e17d4121c139806ecb5977
GET /wp-content/plugins/menu-image/includes/css/menu-image.css?ver=3.0.8 HTTP/1.1
Host: odiannews.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://odiannews.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 04 Sep 2022 19:42:19 GMT
content-type: text/css
last-modified: Tue, 08 Mar 2022 03:55:02 GMT
etag: W/"6226d396-d0f"
strict-transport-security: max-age=15768000; includeSubDomains
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
odiannews.com/wp-content/themes/newscard/assets/library/jquery.marquee/jquery.marquee.min.js?ver=5.9.4
212.227.191.17200 OK 2.7 kB URL HTTP/2 odiannews.com/wp-content/themes/newscard/assets/library/jquery.marquee/jquery.marquee.min.js?ver=5.9.4
IP 212.227.191.17:0
File type ASCII text, with very long lines (1219)
Hash 55ab0287efab69c776ae2c1eec3f29fa
908f5c21fcb64cbebc052dabb323efcbd4004672
39d579959afb6cb79dfc2b1eef7a454dbd79cf2381f3fca758a8418ea1d5027a
GET /wp-content/themes/newscard/assets/library/jquery.marquee/jquery.marquee.min.js?ver=5.9.4 HTTP/1.1
Host: odiannews.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://odiannews.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 04 Sep 2022 19:42:19 GMT
content-type: application/javascript
last-modified: Tue, 15 Feb 2022 17:12:32 GMT
etag: W/"620bdf00-235d"
strict-transport-security: max-age=15768000; includeSubDomains
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
odiannews.com/wp-content/themes/newscard/assets/library/match-height/jquery.matchHeight-settings.js?ver=5.9.4
212.227.191.17200 OK 16 kB URL HTTP/2 odiannews.com/wp-content/themes/newscard/assets/library/match-height/jquery.matchHeight-settings.js?ver=5.9.4
IP 212.227.191.17:0
Hash 95b65040c16dc618e23d81fe80df68f6
455bfadd0d986e0874f407d003d9a8b01604ba15
8fb818546f6c1a098e35c89cb4ea7326e605e2aee15e38830cd62c6807b05ae6
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/newscard/assets/library/match-height/jquery.matchHeight-settings.js?ver=5.9.4 HTTP/1.1
Host: odiannews.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://odiannews.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 04 Sep 2022 19:42:19 GMT
content-type: application/javascript
x-accel-version: 0.01
last-modified: Tue, 15 Feb 2022 17:12:32 GMT
etag: W/"53-5d811a37ec7b3"
strict-transport-security: max-age=15768000; includeSubDomains
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
odiannews.com/wp-content/themes/newscard/assets/library/owl-carousel/owl.carousel.min.js?ver=2.3.4
212.227.191.17200 OK 61 kB URL HTTP/2 odiannews.com/wp-content/themes/newscard/assets/library/owl-carousel/owl.carousel.min.js?ver=2.3.4
IP 212.227.191.17:0
File type ASCII text, with very long lines (31997)
Hash 464ad5b32542f3e75cb2f599ceb514c1
f4b2753002d6a22932f7967ade5858e85ab58f3c
90f81e6bf9665a95f0a9e72ff0c3bc1975a987d76265d2de769008ea8d5809c1
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/newscard/assets/library/owl-carousel/owl.carousel.min.js?ver=2.3.4 HTTP/1.1
Host: odiannews.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://odiannews.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 04 Sep 2022 19:42:19 GMT
content-type: application/javascript
last-modified: Tue, 15 Feb 2022 17:12:32 GMT
etag: W/"620bdf00-ad36"
strict-transport-security: max-age=15768000; includeSubDomains
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
odiannews.com/wp-content/themes/newscard/assets/library/sticky/jquery.sticky.js?ver=1.0.4
212.227.191.17200 OK 2.9 kB URL HTTP/2 odiannews.com/wp-content/themes/newscard/assets/library/sticky/jquery.sticky.js?ver=1.0.4
IP 212.227.191.17:0
Hash 83ad0cb01706352c90b46a33475d91d0
039ba7e88f5ca9fd8ac5ea3f791c8bd9ecac2fb3
e4750ddd97ec58c7a6e6ef93dd3e0014f101047631d539b571ad69361894987a
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/newscard/assets/library/sticky/jquery.sticky.js?ver=1.0.4 HTTP/1.1
Host: odiannews.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://odiannews.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 04 Sep 2022 19:42:19 GMT
content-type: application/javascript
last-modified: Tue, 15 Feb 2022 17:12:32 GMT
etag: W/"620bdf00-2765"
strict-transport-security: max-age=15768000; includeSubDomains
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
fonts.gstatic.com/s/roboto/v30/KFOlCnqEu92Fr1MmWUlfBBc4.woff2
142.250.74.163200 OK 16 kB URL HTTP/2 fonts.gstatic.com/s/roboto/v30/KFOlCnqEu92Fr1MmWUlfBBc4.woff2
IP 142.250.74.163:0
File type Web Open Font Format (Version 2), TrueType, length 15860, version 1.0\012- data
Hash e9f5aaf547f165386cd313b995dddd8e
acdef5603c2387b0e5bffd744b679a24a8bc1968
f5aebdfea35d1e7656ef4acc5db1f243209755ae3300943ef8fc6280f363c860
GET /s/roboto/v30/KFOlCnqEu92Fr1MmWUlfBBc4.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://odiannews.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15860
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 31 Aug 2022 19:34:08 GMT
expires: Thu, 31 Aug 2023 19:34:08 GMT
cache-control: public, max-age=31536000
age: 346091
last-modified: Wed, 11 May 2022 19:24:42 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
odiannews.com/wp-includes/js/mediaelement/wp-mediaelement.min.css?ver=5.9.4
212.227.191.17200 OK 43 kB URL HTTP/2 odiannews.com/wp-includes/js/mediaelement/wp-mediaelement.min.css?ver=5.9.4
IP 212.227.191.17:0
File type ASCII text, with very long lines (4186), with no line terminators
Hash 368ad5390d87bb9f2e53f0568f57bbb3
66ddc9a8e1449d87f7c52ec17f5bcbc5a14c1cb1
e5fbe63ad0bc7846bc2faa73760d0c9135d775ce8dc9cc624030a480f64c7807
GET /wp-includes/js/mediaelement/wp-mediaelement.min.css?ver=5.9.4 HTTP/1.1
Host: odiannews.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://odiannews.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 04 Sep 2022 19:42:19 GMT
content-type: text/css
last-modified: Fri, 07 Jun 2019 20:45:02 GMT
etag: W/"5cfaccce-105a"
strict-transport-security: max-age=15768000; includeSubDomains
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
odiannews.com/wp-content/uploads/2022/09/cyrus-mistri.jpg
212.227.191.17200 OK 25 kB URL HTTP/2 odiannews.com/wp-content/uploads/2022/09/cyrus-mistri.jpg
IP 212.227.191.17:0
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, Exif Standard: [TIFF image data, big-endian, direntries=4], baseline, precision 8, 617x328, components 3\012- data
Hash 760bd9dfbdabf5a70e27bc5ad7dcf9de
213f6a5f35fd189d4ff5d5e0d36de7cfe510ca46
f4cfa525a16dc9f61173904b3c8ee031aba0e3682e9b335ffbec62f9afaadc02
GET /wp-content/uploads/2022/09/cyrus-mistri.jpg HTTP/1.1
Host: odiannews.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://odiannews.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 04 Sep 2022 19:42:19 GMT
content-type: image/jpeg
content-length: 25080
last-modified: Sun, 04 Sep 2022 13:15:53 GMT
etag: "6314a509-61f8"
strict-transport-security: max-age=15768000; includeSubDomains
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2
odiannews.com/wp-content/themes/newscard/assets/library/font-awesome/css/font-awesome.css?ver=5.9.4
212.227.191.17200 OK 12 kB URL HTTP/2 odiannews.com/wp-content/themes/newscard/assets/library/font-awesome/css/font-awesome.css?ver=5.9.4
IP 212.227.191.17:0
File type troff or preprocessor input, ASCII text, with very long lines (372)
Hash 835e143f2dc11c990a90afcdd3e84c12
3bf60478a069839ea56258e83bc0ba6707c529ac
4de87d0ef5a06fdfe9bcf313b23fb97009925ce115dd4fade01b173ead113063
GET /wp-content/themes/newscard/assets/library/font-awesome/css/font-awesome.css?ver=5.9.4 HTTP/1.1
Host: odiannews.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://odiannews.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 04 Sep 2022 19:42:19 GMT
content-type: text/css
last-modified: Tue, 15 Feb 2022 17:12:32 GMT
etag: W/"620bdf00-9226"
strict-transport-security: max-age=15768000; includeSubDomains
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
odiannews.com/wp-content/themes/newscard/assets/library/bootstrap/css/bootstrap.min.css?ver=4.0.0
212.227.191.17200 OK 27 kB URL HTTP/2 odiannews.com/wp-content/themes/newscard/assets/library/bootstrap/css/bootstrap.min.css?ver=4.0.0
IP 212.227.191.17:0
File type ASCII text, with very long lines (65325)
Hash 07f482e70ab596a48087e31363927a4c
5413710fba92b3cb861c3607102f430bc54853bb
3080071f0cf6e7fc6a031a79c2da71f3a8b0db031042eae9589149d7d0ddf8b6
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/newscard/assets/library/bootstrap/css/bootstrap.min.css?ver=4.0.0 HTTP/1.1
Host: odiannews.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://odiannews.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 04 Sep 2022 19:42:19 GMT
content-type: text/css
last-modified: Tue, 15 Feb 2022 17:12:32 GMT
etag: W/"620bdf00-235bf"
strict-transport-security: max-age=15768000; includeSubDomains
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
odiannews.com/wp-content/themes/newscard/assets/library/bootstrap/js/popper.min.js?ver=1.12.9
212.227.191.17200 OK 16 kB URL HTTP/2 odiannews.com/wp-content/themes/newscard/assets/library/bootstrap/js/popper.min.js?ver=1.12.9
IP 212.227.191.17:0
File type ASCII text, with very long lines (19015)
Hash 640bb4e0fdcaacde5a29fdda13356dd2
cbe426c47525f8db0f8d0782d1c22aa89c95297d
e0afd375ca66a7f2b72033af632e2b76e5305f5ea2c49c11f14b2159a92a4541
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/newscard/assets/library/bootstrap/js/popper.min.js?ver=1.12.9 HTTP/1.1
Host: odiannews.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://odiannews.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 04 Sep 2022 19:42:19 GMT
content-type: application/javascript
last-modified: Tue, 15 Feb 2022 17:12:32 GMT
etag: W/"620bdf00-4acc"
strict-transport-security: max-age=15768000; includeSubDomains
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
odiannews.com/wp-content/themes/newscard/assets/library/owl-carousel/owl.carousel.min.css?ver=2.3.4
212.227.191.17200 OK 5.6 kB URL HTTP/2 odiannews.com/wp-content/themes/newscard/assets/library/owl-carousel/owl.carousel.min.css?ver=2.3.4
IP 212.227.191.17:0
File type ASCII text, with very long lines (3184)
Hash b4562ab5b36ec16227dd16082685f66c
936ffef897b2570005e49a5dc24429948fcb5fe7
77496bb48a8266d88d7de6287733b1b3c346e765e10b813bd89cbe744fba1270
GET /wp-content/themes/newscard/assets/library/owl-carousel/owl.carousel.min.css?ver=2.3.4 HTTP/1.1
Host: odiannews.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://odiannews.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 04 Sep 2022 19:42:19 GMT
content-type: text/css
last-modified: Tue, 15 Feb 2022 17:12:32 GMT
etag: W/"620bdf00-d17"
strict-transport-security: max-age=15768000; includeSubDomains
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
odiannews.com/wp-content/plugins/location-weather/assets/css/old-style.min.css?ver=1.3.1
212.227.191.17200 OK 77 kB URL HTTP/2 odiannews.com/wp-content/plugins/location-weather/assets/css/old-style.min.css?ver=1.3.1
IP 212.227.191.17:0
File type ASCII text, with very long lines (684), with no line terminators
Hash 0fbc1e0eebb9d17e9b12cd85f7e3dfad
66cf0ea950a7f0d9d1fc6bae3ef4bd3677c34fb8
d1eace0ff8bcbcc614a40130c7489df888ddd66a2e6ee3139ea5a1eb27318e7d
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/location-weather/assets/css/old-style.min.css?ver=1.3.1 HTTP/1.1
Host: odiannews.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://odiannews.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 04 Sep 2022 19:42:19 GMT
content-type: text/css
x-accel-version: 0.01
last-modified: Tue, 19 Jul 2022 15:55:03 GMT
etag: W/"2ac-5e42a81f916c2"
strict-transport-security: max-age=15768000; includeSubDomains
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
odiannews.com/wp-content/plugins/my-html-post-widgets/style.css?ver=5.9.4
212.227.191.17200 OK 82 kB URL HTTP/2 odiannews.com/wp-content/plugins/my-html-post-widgets/style.css?ver=5.9.4
IP 212.227.191.17:0
File type ASCII text, with CRLF line terminators
Hash 34507539842ad5e04601d4df5950c244
cdcbaa1f0878292b370ba20f6669915b62fe74a1
92b7692b6757544ef0967f32a724256f7d28336679ca7050d56ae715953663ce
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/my-html-post-widgets/style.css?ver=5.9.4 HTTP/1.1
Host: odiannews.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://odiannews.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 04 Sep 2022 19:42:19 GMT
content-type: text/css
x-accel-version: 0.01
last-modified: Sat, 18 Jul 2020 04:42:17 GMT
etag: W/"60-5aaafe5ebfc40"
strict-transport-security: max-age=15768000; includeSubDomains
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
odiannews.com/wp-content/themes/newscard/assets/library/bootstrap/js/bootstrap.min.js?ver=4.0.0
212.227.191.17200 OK 92 kB URL HTTP/2 odiannews.com/wp-content/themes/newscard/assets/library/bootstrap/js/bootstrap.min.js?ver=4.0.0
IP 212.227.191.17:0
File type ASCII text, with very long lines (48664)
Hash 1f6e963f1efb19f27b8a03b32815778d
69470437bddbe15ff1a84ed4cf942b8273de8418
fd3e46fdb9dfd0a90b69ded97a8d4bac339f0f57398325380452065c42509644
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/newscard/assets/library/bootstrap/js/bootstrap.min.js?ver=4.0.0 HTTP/1.1
Host: odiannews.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://odiannews.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 04 Sep 2022 19:42:19 GMT
content-type: application/javascript
last-modified: Tue, 15 Feb 2022 17:12:32 GMT
etag: W/"620bdf00-bf06"
strict-transport-security: max-age=15768000; includeSubDomains
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
odiannews.com/wp-content/plugins/ubermenu/pro/assets/css/skins/orange.css?ver=5.9.4
212.227.191.17200 OK 18 kB URL HTTP/2 odiannews.com/wp-content/plugins/ubermenu/pro/assets/css/skins/orange.css?ver=5.9.4
IP 212.227.191.17:0
Hash 846c2e3fa8b580dcb974b4c1505766ac
fe5647ee60cb65cd65b8c4db24b139d46dd4c59d
a948cb47126e3530c668488664b9ff5fdebacf94033b26724e4149d8cf027332
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/ubermenu/pro/assets/css/skins/orange.css?ver=5.9.4 HTTP/1.1
Host: odiannews.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://odiannews.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 04 Sep 2022 19:42:19 GMT
content-type: text/css
last-modified: Sat, 18 Jul 2020 10:38:29 GMT
etag: W/"5f12d125-1b8d"
strict-transport-security: max-age=15768000; includeSubDomains
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
odiannews.com/wp-content/plugins/ubermenu/pro/assets/css/ubermenu.min.css?ver=3.2.0.2
212.227.191.17200 OK 14 kB URL HTTP/2 odiannews.com/wp-content/plugins/ubermenu/pro/assets/css/ubermenu.min.css?ver=3.2.0.2
IP 212.227.191.17:0
File type ASCII text, with very long lines (39688)
Hash 4030ca1bc9c5a79fa442943c799efdc9
747c1044d7d95b4267f56343bc5cb1cba6d239a3
50772bfdb3af1b9cad6c4d15f9ce842a9f50a3748f601d9871aa5b9602fbd2dc
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/ubermenu/pro/assets/css/ubermenu.min.css?ver=3.2.0.2 HTTP/1.1
Host: odiannews.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://odiannews.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 04 Sep 2022 19:42:19 GMT
content-type: text/css
last-modified: Tue, 14 Jul 2020 16:17:42 GMT
etag: W/"5f0ddaa6-9b6b"
strict-transport-security: max-age=15768000; includeSubDomains
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
odiannews.com/wp-content/plugins/gallery-videos/JS/modernizr.custom.js?ver=5.9.4
212.227.191.17200 OK 19 kB URL HTTP/2 odiannews.com/wp-content/plugins/gallery-videos/JS/modernizr.custom.js?ver=5.9.4
IP 212.227.191.17:0
File type HTML document text\012- HTML document, ASCII text, with very long lines (9019), with no line terminators
Hash 3c66f9038cf4d4ab842950cd0c15fcb2
ce61c6c20ea8404948c2e2f91330002225de1fbe
34c07c7f548b6268c7926487152e5a692e19fa3bc12ef4c60ab16e4ee5c3168c
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/gallery-videos/JS/modernizr.custom.js?ver=5.9.4 HTTP/1.1
Host: odiannews.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://odiannews.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 04 Sep 2022 19:42:19 GMT
content-type: application/javascript
last-modified: Wed, 24 Aug 2022 15:55:06 GMT
etag: W/"630649da-233b"
strict-transport-security: max-age=15768000; includeSubDomains
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
odiannews.com/wp-includes/js/jquery/jquery.min.js?ver=3.6.0
212.227.191.17200 OK 37 kB URL HTTP/2 odiannews.com/wp-includes/js/jquery/jquery.min.js?ver=3.6.0
IP 212.227.191.17:0
File type ASCII text, with very long lines (65447)
Hash 2c4b794a55492ea134df816e05327fcb
c6e6ead2a7d2bd704e2cc9448966351b529bc077
3b6f37a20cf6418f117069dc5dfc34c792b8c9dd24301239652ab31607d9cd3a
Analyzer Verdict Alert fortinet Phishing
GET /wp-includes/js/jquery/jquery.min.js?ver=3.6.0 HTTP/1.1
Host: odiannews.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://odiannews.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 04 Sep 2022 19:42:19 GMT
content-type: application/javascript
last-modified: Sun, 26 Sep 2021 07:42:00 GMT
etag: W/"61502448-15db1"
strict-transport-security: max-age=15768000; includeSubDomains
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
odiannews.com/wp-includes/js/jquery/ui/core.min.js?ver=1.13.1
212.227.191.17200 OK 46 kB URL HTTP/2 odiannews.com/wp-includes/js/jquery/ui/core.min.js?ver=1.13.1
IP 212.227.191.17:0
File type Unicode text, UTF-8 text, with very long lines (8189)
Hash 925546099f60906edf67f82fbbe9ad11
7ce7e08e83b4fc8e743124fd76f674fa3925bce3
5c96656f7858cd6186d2c4fc6397694f455718f5cab43c53cb1da6027372eeba
GET /wp-includes/js/jquery/ui/core.min.js?ver=1.13.1 HTTP/1.1
Host: odiannews.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://odiannews.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 04 Sep 2022 19:42:19 GMT
content-type: application/javascript
last-modified: Tue, 22 Feb 2022 15:55:52 GMT
etag: W/"62150788-50ea"
strict-transport-security: max-age=15768000; includeSubDomains
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
odiannews.com/wp-includes/js/jquery/jquery-migrate.min.js?ver=3.3.2
212.227.191.17200 OK 65 kB URL HTTP/2 odiannews.com/wp-includes/js/jquery/jquery-migrate.min.js?ver=3.3.2
IP 212.227.191.17:0
File type ASCII text, with very long lines (11126)
Hash 70a0225df4c442e95d0c7ff67b38202e
5c99d6a3b82d3e6051f970e4c3c195450d2949ea
cc211ad437b5a630dc0cf66eeeebb82b0de417bbbb9c8ae0d8012d50bbb552d2
Analyzer Verdict Alert fortinet Phishing
GET /wp-includes/js/jquery/jquery-migrate.min.js?ver=3.3.2 HTTP/1.1
Host: odiannews.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://odiannews.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 04 Sep 2022 19:42:19 GMT
content-type: application/javascript
last-modified: Sun, 26 Sep 2021 07:42:00 GMT
etag: W/"61502448-2bd8"
strict-transport-security: max-age=15768000; includeSubDomains
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
odiannews.com/wp-content/plugins/ubermenu/assets/css/fontawesome/css/font-awesome.min.css?ver=4.3
212.227.191.17200 OK 20 kB URL HTTP/2 odiannews.com/wp-content/plugins/ubermenu/assets/css/fontawesome/css/font-awesome.min.css?ver=4.3
IP 212.227.191.17:0
File type ASCII text, with very long lines (23577)
Hash 5d90a62e7cab26483aa5030cfebb1b6d
cf03ee4783a5b6876ce6de482ce9107e97087ac5
dc2a3a11c59c527f0b22d7d9ee51a5af180024c79d80552896cf1406c505894b
GET /wp-content/plugins/ubermenu/assets/css/fontawesome/css/font-awesome.min.css?ver=4.3 HTTP/1.1
Host: odiannews.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://odiannews.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 04 Sep 2022 19:42:19 GMT
content-type: text/css
last-modified: Tue, 14 Jul 2020 16:17:42 GMT
etag: W/"5f0ddaa6-5cbb"
strict-transport-security: max-age=15768000; includeSubDomains
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
odiannews.com/wp-content/plugins/gallery-videos/JS/Total-Soft-Gallery-Video-Widget.js?ver=5.9.4
212.227.191.17200 OK 19 kB URL HTTP/2 odiannews.com/wp-content/plugins/gallery-videos/JS/Total-Soft-Gallery-Video-Widget.js?ver=5.9.4
IP 212.227.191.17:0
File type ASCII text, with CRLF line terminators
Hash c924f1f191e3925ced34f10bcf51de19
d7479a32cb6f84ae8b1acc8d044c9af92f9e19bb
d74e28bfa0d5fa85b15780cd249f9560d6395a177414daefea68731d7ffde467
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/gallery-videos/JS/Total-Soft-Gallery-Video-Widget.js?ver=5.9.4 HTTP/1.1
Host: odiannews.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://odiannews.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 04 Sep 2022 19:42:19 GMT
content-type: application/javascript
last-modified: Wed, 24 Aug 2022 15:55:06 GMT
etag: W/"630649da-173bf"
strict-transport-security: max-age=15768000; includeSubDomains
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
odiannews.com/wp-content/plugins/jetpack/css/jetpack.css?ver=10.8
212.227.191.17200 OK 30 kB URL HTTP/2 odiannews.com/wp-content/plugins/jetpack/css/jetpack.css?ver=10.8
IP 212.227.191.17:0
File type ASCII text, with very long lines (18436)
Hash d96ae3f6479f0edcb2d109637eb1822b
a7d6e6208ddabd135023e5cf8db49bf8d049a2bd
f213dc90cc0b1a3bc92876cd0ddb25186273c6b02e9ba08f3a5a010f1f2a6a12
GET /wp-content/plugins/jetpack/css/jetpack.css?ver=10.8 HTTP/1.1
Host: odiannews.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://odiannews.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 04 Sep 2022 19:42:19 GMT
content-type: text/css
last-modified: Sun, 17 Apr 2022 10:15:33 GMT
etag: W/"625be8c5-15854"
strict-transport-security: max-age=15768000; includeSubDomains
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
odiannews.com/wp-content/themes/newscard/assets/js/scripts.js?ver=5.9.4
212.227.191.17200 OK 60 kB URL HTTP/2 odiannews.com/wp-content/themes/newscard/assets/js/scripts.js?ver=5.9.4
IP 212.227.191.17:0
Hash 73d5b607ab5bd70d45c1fdcddfbde227
11e50235a0de807cda959f6b646a0b40ff48478a
b532e37dcd6c8c4f12315b1c8edf86c25403ba8c7a5db30af5bcebbeae9fe953
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/newscard/assets/js/scripts.js?ver=5.9.4 HTTP/1.1
Host: odiannews.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://odiannews.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 04 Sep 2022 19:42:19 GMT
content-type: application/javascript
last-modified: Tue, 15 Feb 2022 17:12:32 GMT
etag: W/"620bdf00-96c"
strict-transport-security: max-age=15768000; includeSubDomains
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
odiannews.com/wp-content/themes/newscard/assets/library/sticky/jquery.sticky-settings.js?ver=5.9.4
212.227.191.17200 OK 10 kB URL HTTP/2 odiannews.com/wp-content/themes/newscard/assets/library/sticky/jquery.sticky-settings.js?ver=5.9.4
IP 212.227.191.17:0
Hash 42b671b2c86ced9bcd55c3c0050051f8
125216f4e07e7ef7b73baa38acf80fd2354566a5
59e76f92410db01518cc7a02f29b84c89fd8c8624c89a1bb57a361d0ef9c91d8
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/newscard/assets/library/sticky/jquery.sticky-settings.js?ver=5.9.4 HTTP/1.1
Host: odiannews.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://odiannews.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 04 Sep 2022 19:42:19 GMT
content-type: application/javascript
x-accel-version: 0.01
last-modified: Tue, 15 Feb 2022 17:12:32 GMT
etag: W/"387-5d811a37ea48b"
strict-transport-security: max-age=15768000; includeSubDomains
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
odiannews.com/wp-content/themes/newscard/assets/library/owl-carousel/owl.carousel-settings.js?ver=5.9.4
212.227.191.17200 OK 50 B URL HTTP/2 odiannews.com/wp-content/themes/newscard/assets/library/owl-carousel/owl.carousel-settings.js?ver=5.9.4
IP 212.227.191.17:0
Hash e4d673a55c5656f19ef81563fb10884c
1f2d8ed221d39329251ad3a6ff1edb20b7219443
f3a8992acb9ab911e0fa4ae12f4b85ef8e61008619f13ee51c7a121ff87f63b1
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/newscard/assets/library/owl-carousel/owl.carousel-settings.js?ver=5.9.4 HTTP/1.1
Host: odiannews.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://odiannews.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 04 Sep 2022 19:42:19 GMT
content-type: application/javascript
x-accel-version: 0.01
last-modified: Tue, 15 Feb 2022 17:12:32 GMT
etag: W/"f3-5d811a37ed753"
strict-transport-security: max-age=15768000; includeSubDomains
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
odiannews.com/wp-content/themes/newscard/assets/library/jquery.marquee/jquery.marquee-settings.js?ver=5.9.4
212.227.191.17200 OK 18 kB URL HTTP/2 odiannews.com/wp-content/themes/newscard/assets/library/jquery.marquee/jquery.marquee-settings.js?ver=5.9.4
IP 212.227.191.17:0
Hash 2df0e8566ee176f9feed6e0b1c23911a
787f291dc2b8ae14df3493e0cad8c8fe1ba29312
b55a974fdb4bbfad1334a54f9391ea152cf60b7149caeb5a5e0c6e1e5bdfb14d
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/newscard/assets/library/jquery.marquee/jquery.marquee-settings.js?ver=5.9.4 HTTP/1.1
Host: odiannews.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://odiannews.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 04 Sep 2022 19:42:19 GMT
content-type: application/javascript
x-accel-version: 0.01
last-modified: Tue, 15 Feb 2022 17:12:32 GMT
etag: W/"27b-5d811a37ecb9b"
strict-transport-security: max-age=15768000; includeSubDomains
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
odiannews.com/wp-content/uploads/2022/06/3-plastic-300x199.jpg
212.227.191.17200 OK 29 kB URL HTTP/2 odiannews.com/wp-content/uploads/2022/06/3-plastic-300x199.jpg
IP 212.227.191.17:0
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 72x72, segment length 16, baseline, precision 8, 300x199, components 3\012- data
Hash 1087ebb5d20ae5b205655431ef5e6396
9af33b1ff979f381e840df521b6911b71986d414
36b0666c6f3ae2077b1b81f06e715820efffb12970d8de1dbab6d1ec092e3565
GET /wp-content/uploads/2022/06/3-plastic-300x199.jpg HTTP/1.1
Host: odiannews.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://odiannews.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 04 Sep 2022 19:42:19 GMT
content-type: image/jpeg
content-length: 29212
last-modified: Sun, 05 Jun 2022 05:12:34 GMT
etag: "629c3b42-721c"
strict-transport-security: max-age=15768000; includeSubDomains
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2
odiannews.com/wp-content/uploads/2022/05/gandhi-on-masjid-row-300x168.jpg
212.227.191.17200 OK 14 kB URL HTTP/2 odiannews.com/wp-content/uploads/2022/05/gandhi-on-masjid-row-300x168.jpg
IP 212.227.191.17:0
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, Exif Standard: [TIFF image data, big-endian, direntries=4], baseline, precision 8, 300x168, components 3\012- data
Hash 7b16bfc0a55ac41994bff2b01c5b047e
ba48bb4a15293525cc758f0b33d5e85ebea4fdf6
994b8c18f8a5e52e21fa9834b566bc44440e991788406368d0f9b2d99b7564a4
GET /wp-content/uploads/2022/05/gandhi-on-masjid-row-300x168.jpg HTTP/1.1
Host: odiannews.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://odiannews.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 04 Sep 2022 19:42:19 GMT
content-type: image/jpeg
content-length: 14163
last-modified: Sat, 28 May 2022 11:45:50 GMT
etag: "62920b6e-3753"
strict-transport-security: max-age=15768000; includeSubDomains
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2
odiannews.com/wp-content/plugins/ubermenu/assets/css/fontawesome/fonts/fontawesome-webfont.woff2?v=4.3.0
212.227.191.17200 OK 57 kB URL HTTP/2 odiannews.com/wp-content/plugins/ubermenu/assets/css/fontawesome/fonts/fontawesome-webfont.woff2?v=4.3.0
IP 212.227.191.17:0
File type Web Open Font Format (Version 2), TrueType, length 56780, version 4.197\012- data
Hash 97493d3f11c0a3bd5cbd959f5d19b699
1075231650f579955905bb2f6527148a8e2b4b16
aadc3580d2b64ff5a7e6f1425587db4e8b033efcbf8f5c332ca52a5ed580c87c
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/ubermenu/assets/css/fontawesome/fonts/fontawesome-webfont.woff2?v=4.3.0 HTTP/1.1
Host: odiannews.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: https://odiannews.com/wp-content/plugins/ubermenu/assets/css/fontawesome/css/font-awesome.min.css?ver=4.3
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 04 Sep 2022 19:42:19 GMT
content-type: font/woff2
content-length: 56780
last-modified: Tue, 14 Jul 2020 16:17:42 GMT
etag: "5f0ddaa6-ddcc"
strict-transport-security: max-age=15768000; includeSubDomains
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2
odiannews.com/wp-content/uploads/2022/09/bjp-leader.jpg
212.227.191.17200 OK 27 kB URL HTTP/2 odiannews.com/wp-content/uploads/2022/09/bjp-leader.jpg
IP 212.227.191.17:0
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, Exif Standard: [TIFF image data, big-endian, direntries=4], baseline, precision 8, 747x420, components 3\012- data
Hash 32284b465a091cb3c8f5faa063404a7e
4dcf0a47760c7008d237fa59c9ca2c56a0e539fd
48708aa720c7424332fb32c099dbd28dc8b8cf262639b5e8b346d1587cad7885
GET /wp-content/uploads/2022/09/bjp-leader.jpg HTTP/1.1
Host: odiannews.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://odiannews.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 04 Sep 2022 19:42:19 GMT
content-type: image/jpeg
content-length: 26606
last-modified: Sun, 04 Sep 2022 06:46:58 GMT
etag: "631449e2-67ee"
strict-transport-security: max-age=15768000; includeSubDomains
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2
stats.wp.com/e-202235.js
192.0.76.3200 OK 10 kB IP 192.0.76.3:0
File type ASCII text, with very long lines (2690)
Hash c6ad9fec0ebba17a1737e0688b04009d
1264cd31da1f147e31d56cfae1edce0ed23cd9b8
a357721ccb4e44af34340e7a72fe9abf6e70c18361cd2b300c52a376e8eb0701
GET /e-202235.js HTTP/1.1
Host: stats.wp.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://odiannews.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Sun, 04 Sep 2022 19:42:19 GMT
content-type: application/javascript
vary: Accept-Encoding
etag: W/"6197c5cf-3508"
content-encoding: br
expires: Mon, 21 Aug 2023 04:16:22 GMT
cache-control: max-age=31536000
access-control-allow-methods: GET, HEAD
access-control-allow-origin: *
x-nc: HIT arn
X-Firefox-Spdy: h2
maps.googleapis.com/maps/api/js?sensor=false&ver=5.9.4
142.250.74.74200 OK 16 kB URL HTTP/2 maps.googleapis.com/maps/api/js?sensor=false&ver=5.9.4
IP 142.250.74.74:0
Hash a68066107c5043df90201ea921b0f757
12bb2570191f3823295d14937068b06eb4ec48e9
21453e5452c81c2a1d1b145ae6f4807160e899a369243393aeef51df2692a99b
GET /maps/api/js?sensor=false&ver=5.9.4 HTTP/1.1
Host: maps.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://odiannews.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/javascript; charset=UTF-8
date: Sun, 04 Sep 2022 19:42:19 GMT
expires: Sun, 04 Sep 2022 20:12:19 GMT
cache-control: public, max-age=1800
vary: Accept-Language
cross-origin-resource-policy: cross-origin
timing-allow-origin: *
content-encoding: gzip
server: mafe
content-length: 53849
x-xss-protection: 0
x-frame-options: SAMEORIGIN
server-timing: gfet4t7; dur=13
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
odiannews.com/wp-content/uploads/2022/08/freerfrewffer-300x169.jpg
212.227.191.17200 OK 13 kB URL HTTP/2 odiannews.com/wp-content/uploads/2022/08/freerfrewffer-300x169.jpg
IP 212.227.191.17:0
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, Exif Standard: [TIFF image data, big-endian, direntries=1, orientation=upper-left], baseline, precision 8, 300x169, components 3\012- data
Hash acc1ac17833d02fa10f8db0ec772629a
c6213cea3c18d12afb94b830cf44f3561951e1fe
4a1e69af549f960cc3f9f2ccea4a0d4fc9fb3cb54df798f6dfd554dd2eb66841
GET /wp-content/uploads/2022/08/freerfrewffer-300x169.jpg HTTP/1.1
Host: odiannews.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://odiannews.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 04 Sep 2022 19:42:19 GMT
content-type: image/jpeg
content-length: 13084
last-modified: Sun, 28 Aug 2022 06:59:59 GMT
etag: "630b126f-331c"
strict-transport-security: max-age=15768000; includeSubDomains
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2
odiannews.com/wp-content/uploads/2022/09/1085550-delhi-railway-station.jpg
212.227.191.17200 OK 48 kB URL HTTP/2 odiannews.com/wp-content/uploads/2022/09/1085550-delhi-railway-station.jpg
IP 212.227.191.17:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 700x400, components 3\012- data
Hash 35ef32e1a78ae8f6ab6dea744e237881
c1717165b1248fead6e03a6f2067627fa46ce7ba
35af402fb4d19a3616c7996957fcb085678fd6ecf29007c591040efa69b3eab7
GET /wp-content/uploads/2022/09/1085550-delhi-railway-station.jpg HTTP/1.1
Host: odiannews.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://odiannews.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 04 Sep 2022 19:42:19 GMT
content-type: image/jpeg
content-length: 47693
last-modified: Sat, 03 Sep 2022 13:11:10 GMT
etag: "6313526e-ba4d"
strict-transport-security: max-age=15768000; includeSubDomains
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2
odiannews.com/wp-content/uploads/2022/09/babar-azam-kohli-16578515634x3-1.jpg
212.227.191.17200 OK 103 kB URL HTTP/2 odiannews.com/wp-content/uploads/2022/09/babar-azam-kohli-16578515634x3-1.jpg
IP 212.227.191.17:0
File type JPEG image data, JFIF standard 1.01, resolution (DPCM), density 37x37, segment length 16, progressive, precision 8, 1600x1200, components 3\012- data
Size 103 kB (103351 bytes)
Hash 937469e57666e8c02ff002a34fd1e603
b374fd22188023d5772a87c538e214e10166d04a
7fc01abdc3b48115cdc8fd47108613e9afb40ae992c4117f712888b10b52e6eb
GET /wp-content/uploads/2022/09/babar-azam-kohli-16578515634x3-1.jpg HTTP/1.1
Host: odiannews.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://odiannews.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 04 Sep 2022 19:42:19 GMT
content-type: image/jpeg
content-length: 103351
last-modified: Sun, 04 Sep 2022 06:18:18 GMT
etag: "6314432a-193b7"
strict-transport-security: max-age=15768000; includeSubDomains
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2
odiannews.com/wp-content/uploads/2020/07/house-48-24x24.ico
212.227.191.17200 OK 2.5 kB URL HTTP/2 odiannews.com/wp-content/uploads/2020/07/house-48-24x24.ico
IP 212.227.191.17:0
File type MS Windows icon resource - 1 icon, 24x24, 32 bits/pixel\012- data
Hash 017ad93818e0521720bb631030131575
92bffbdc0a6e56ee31be5c7d33fa69ed411067b9
d52609a9a3e890922e84c8c84727d0adbfa37d107050f95cb468270502bf5f35
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/uploads/2020/07/house-48-24x24.ico HTTP/1.1
Host: odiannews.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://odiannews.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 04 Sep 2022 19:42:19 GMT
content-type: image/vnd.microsoft.icon
content-length: 2462
last-modified: Tue, 14 Jul 2020 09:38:16 GMT
etag: "5f0d7d08-99e"
strict-transport-security: max-age=15768000; includeSubDomains
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2
odiannews.com/wp-content/uploads/2020/07/cropped-news2-32x32.png
212.227.191.17200 OK 2.1 kB URL HTTP/2 odiannews.com/wp-content/uploads/2020/07/cropped-news2-32x32.png
IP 212.227.191.17:0
File type PNG image data, 32 x 32, 8-bit/color RGBA, non-interlaced\012- data
Hash 70a08a5b48a0029c56c2210300e02336
f44bcb0bc7e05bb56e894ee2641c2dfe3df456c4
fc8b681710296ff68dc91c43cd25e8426e4a1e6f1de4382ac8772eebb7498f79
GET /wp-content/uploads/2020/07/cropped-news2-32x32.png HTTP/1.1
Host: odiannews.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://odiannews.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 04 Sep 2022 19:42:20 GMT
content-type: image/png
content-length: 2113
last-modified: Sun, 12 Jul 2020 06:50:30 GMT
etag: "5f0ab2b6-841"
strict-transport-security: max-age=15768000; includeSubDomains
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2
odiannews.com/wp-content/plugins/location-weather/assets/css/splw-style.min.css?ver=1.3.1
212.227.191.17200 OK 23 kB URL HTTP/2 odiannews.com/wp-content/plugins/location-weather/assets/css/splw-style.min.css?ver=1.3.1
IP 212.227.191.17:0
File type ASCII text, with very long lines (1932), with no line terminators
Hash 37dbb1f90374ceeff75bb3b0c656735b
92e28559ae299405acf80af8ffe899a43ad3d5f9
a4437e2be837797fb76ec24e34e4f85daa6d1ebb0efe9a8e36dc7abdaf07224a
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/location-weather/assets/css/splw-style.min.css?ver=1.3.1 HTTP/1.1
Host: odiannews.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://odiannews.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 04 Sep 2022 19:42:19 GMT
content-type: text/css
last-modified: Tue, 19 Jul 2022 15:55:03 GMT
etag: W/"62d6d3d7-78c"
strict-transport-security: max-age=15768000; includeSubDomains
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash 3f5b4e778429d4ba70b497cc9fbb1127
db17f774a14f160caa77eb0222152767a364bba7
64da763bf84ec2d6284a112f50392f15a8b11122f3875317c52bd6c5e8e8d894
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 04 Sep 2022 19:42:20 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash 3f5b4e778429d4ba70b497cc9fbb1127
db17f774a14f160caa77eb0222152767a364bba7
64da763bf84ec2d6284a112f50392f15a8b11122f3875317c52bd6c5e8e8d894
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 04 Sep 2022 19:42:20 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
maps.googleapis.com/maps/api/mapsjs/gen_204?csp_test=true
142.250.74.74200 OK 23 B URL HTTP/2 maps.googleapis.com/maps/api/mapsjs/gen_204?csp_test=true
IP 142.250.74.74:0
File type JSON data\012- , ASCII text
Hash e3981ca10169a319d5aa062bf43a5fa1
2c6ed584767b65688ce99b1ebe1a3b7448a67421
8b0b8749aba12de93f3cf5d86f9fac9d6de7cac400a17473718f182a34ebb7e9
GET /maps/api/mapsjs/gen_204?csp_test=true HTTP/1.1
Host: maps.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://odiannews.com
Connection: keep-alive
Referer: https://odiannews.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/json; charset=UTF-8
vary: Origin, X-Origin, Referer
content-encoding: gzip
date: Sun, 04 Sep 2022 19:42:20 GMT
server: scaffolding on HTTPServer2
cache-control: private
content-length: 23
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
access-control-allow-origin: https://odiannews.com
access-control-expose-headers: vary,vary,vary,content-encoding,date,server,content-length
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
www.google-analytics.com/analytics.js
142.250.74.174200 OK 20 kB URL HTTP/2 www.google-analytics.com/analytics.js
IP 142.250.74.174:0
File type ASCII text, with very long lines (1325)
Hash 56f5d7f608e25d64207135f045f988cb
901eb59372ae330ae85e1384da93479b21ae1082
1910daea79e5a9d04829a91e432dfa56f45a80a3e14a8cf667fec73af9fd3d29
GET /analytics.js HTTP/1.1
Host: www.google-analytics.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://odiannews.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
strict-transport-security: max-age=10886400; includeSubDomains; preload
x-content-type-options: nosniff
vary: Accept-Encoding
content-encoding: gzip
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 20006
date: Sun, 04 Sep 2022 18:41:12 GMT
expires: Sun, 04 Sep 2022 20:41:12 GMT
cache-control: public, max-age=7200
age: 3668
last-modified: Wed, 13 Apr 2022 21:02:38 GMT
content-type: text/javascript
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
pagead2.googlesyndication.com/pagead/js/adsbygoogle.js?client=ca-pub-7691325112144216
142.250.74.34200 OK 57 kB URL HTTP/2 pagead2.googlesyndication.com/pagead/js/adsbygoogle.js?client=ca-pub-7691325112144216
IP 142.250.74.34:0
File type ASCII text, with very long lines (2897)
Hash 55792a5a587c57ea346a7f1406c27ee8
c2c23f9f7bcf526ea02a5da432be9815c0acc50a
d5decd21902765168dfb8e96978444fe3566408ea55ac25edb93ef55e7b3c9c5
GET /pagead/js/adsbygoogle.js?client=ca-pub-7691325112144216 HTTP/1.1
Host: pagead2.googlesyndication.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://odiannews.com
Connection: keep-alive
Referer: https://odiannews.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
vary: Accept-Encoding, Origin
date: Sun, 04 Sep 2022 19:42:20 GMT
expires: Sun, 04 Sep 2022 19:42:20 GMT
cache-control: private, max-age=3600
content-type: text/javascript; charset=UTF-8
etag: 8850450982033268568
access-control-allow-origin: *
x-content-type-options: nosniff
content-disposition: attachment; filename="f.txt"
content-encoding: gzip
server: cafe
content-length: 57344
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
www.google-analytics.com/j/collect?v=1&_v=j96&a=308519173&t=pageview&_s=1&dl=https%3A%2F%2Fodiannews.com%2F&ul=en-us&de=UTF-8&dt=Home%20-%20%E0%AC%93%E0%AC%A1%E0%AC%BF%E0%AC%86%E0%AC%A8%E0%AD%8D%20%E0%AC%A8%E0%AD%8D%E0%AD%9F%E0%AD%81%E0%AC%9C&sd=24-bit&sr=1280x1024&vp=1268x939&je=0&_u=YEBAAUABAAAAAC~&jid=1627971002&gjid=1354670417&cid=1069312407.1662320536&tid=UA-107754389-1&_gid=1584199907.1662320536&_r=1>m=2ou8v0&z=1056916391
142.250.74.174200 OK 1 B URL HTTP/2 www.google-analytics.com/j/collect?v=1&_v=j96&a=308519173&t=pageview&_s=1&dl=https%3A%2F%2Fodiannews.com%2F&ul=en-us&de=UTF-8&dt=Home%20-%20%E0%AC%93%E0%AC%A1%E0%AC%BF%E0%AC%86%E0%AC%A8%E0%AD%8D%20%E0%AC%A8%E0%AD%8D%E0%AD%9F%E0%AD%81%E0%AC%9C&sd=24-bit&sr=1280x1024&vp=1268x939&je=0&_u=YEBAAUABAAAAAC~&jid=1627971002&gjid=1354670417&cid=1069312407.1662320536&tid=UA-107754389-1&_gid=1584199907.1662320536&_r=1>m=2ou8v0&z=1056916391
IP 142.250.74.174:0
File type very short file (no magic)
Hash c4ca4238a0b923820dcc509a6f75849b
356a192b7913b04c54574d18c28d46e6395428ab
6b86b273ff34fce19d6b804eff5a3f5747ada4eaa22f1d49c01e52ddb7875b4b
POST /j/collect?v=1&_v=j96&a=308519173&t=pageview&_s=1&dl=https%3A%2F%2Fodiannews.com%2F&ul=en-us&de=UTF-8&dt=Home%20-%20%E0%AC%93%E0%AC%A1%E0%AC%BF%E0%AC%86%E0%AC%A8%E0%AD%8D%20%E0%AC%A8%E0%AD%8D%E0%AD%9F%E0%AD%81%E0%AC%9C&sd=24-bit&sr=1280x1024&vp=1268x939&je=0&_u=YEBAAUABAAAAAC~&jid=1627971002&gjid=1354670417&cid=1069312407.1662320536&tid=UA-107754389-1&_gid=1584199907.1662320536&_r=1>m=2ou8v0&z=1056916391 HTTP/1.1
Host: www.google-analytics.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Content-Length: 0
Origin: https://odiannews.com
Connection: keep-alive
Referer: https://odiannews.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
access-control-allow-origin: https://odiannews.com
date: Sun, 04 Sep 2022 19:42:20 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
last-modified: Sun, 17 May 1998 03:00:00 GMT
access-control-allow-credentials: true
x-content-type-options: nosniff
content-type: text/plain
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 1
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash 1931a32d83e4feb5268887bcb07fcc1e
6fb75c21ced29544dd6d7c3b0ef79adf65718a39
d794fae0b82097a2e97af2f21b6c243832081f88036a2a56bbeeabb08790d88d
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 04 Sep 2022 19:42:20 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
odiannews.com/wp-content/plugins/location-weather/assets/js/Old-locationWeather.min.js?ver=1.3.1
212.227.191.17200 OK 5.9 kB URL HTTP/2 odiannews.com/wp-content/plugins/location-weather/assets/js/Old-locationWeather.min.js?ver=1.3.1
IP 212.227.191.17:0
File type Unicode text, UTF-8 text, with very long lines (4284), with no line terminators
Hash 60abb532839e5b29a7414f1cdaf57b1b
b04b8977eced42909e1e2e4f0589750d41ad5484
4f5856b693f7b054baf9b08947d704e07cf5ceb9f44f3df2b9a16dfc7cb661b2
GET /wp-content/plugins/location-weather/assets/js/Old-locationWeather.min.js?ver=1.3.1 HTTP/1.1
Host: odiannews.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://odiannews.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 04 Sep 2022 19:42:19 GMT
content-type: application/javascript
last-modified: Tue, 19 Jul 2022 15:55:03 GMT
etag: W/"62d6d3d7-10c2"
strict-transport-security: max-age=15768000; includeSubDomains
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash ad56516f7302ec579a2ac494f84eeec2
8eb6930176531f5783ad1211ea528df143368403
e047155909ff78f0ba75cd9ed4ad78a060b33a05610f66f388e7291aecd32d4a
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 04 Sep 2022 19:42:20 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
odiannews.com/wp-content/plugins/ubermenu/assets/js/ubermenu.min.js?ver=3.2.0.2
212.227.191.17200 OK 6.8 kB URL HTTP/2 odiannews.com/wp-content/plugins/ubermenu/assets/js/ubermenu.min.js?ver=3.2.0.2
IP 212.227.191.17:0
File type ASCII text, with very long lines (615)
Hash de3547a7532367dc3d95c9ef24bb5492
d51c2332b03488ebfc4a79031c612e68c2ceb411
48dd4c8dcbe1c2848ca8a27703770cad0b2403e1634c851f85aa6f669dc1cf11
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/ubermenu/assets/js/ubermenu.min.js?ver=3.2.0.2 HTTP/1.1
Host: odiannews.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://odiannews.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 04 Sep 2022 19:42:19 GMT
content-type: application/javascript
last-modified: Tue, 14 Jul 2020 16:17:42 GMT
etag: W/"5f0ddaa6-64e5"
strict-transport-security: max-age=15768000; includeSubDomains
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash 51df98c169fb7de773301d014bcea4b8
9bdf9bdb9b5eee378e9ac4ec68ca07c665ae4819
c8336f3a2e16c9390b610c612ce9be7c19286f04a6328a29200cbf65db5801c8
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 04 Sep 2022 19:42:20 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
partner.googleadservices.com/gampad/cookie.js?domain=odiannews.com&callback=_gfp_s_&client=ca-pub-7691325112144216
142.250.74.98200 OK 201 B URL HTTP/2 partner.googleadservices.com/gampad/cookie.js?domain=odiannews.com&callback=_gfp_s_&client=ca-pub-7691325112144216
IP 142.250.74.98:0
File type ASCII text, with no line terminators
Hash d429025d4880c7a6d8e6657a090c126b
67601b98d8bdf4a1c067d050660a4e46c2a37a55
2c04788e1e957b1d2b43fa52d1855f6b2d626443bb8db685290d0730d0a43062
GET /gampad/cookie.js?domain=odiannews.com&callback=_gfp_s_&client=ca-pub-7691325112144216 HTTP/1.1
Host: partner.googleadservices.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://odiannews.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
content-type: text/javascript; charset=UTF-8
x-content-type-options: nosniff
content-disposition: attachment; filename="f.txt"
content-encoding: gzip
date: Sun, 04 Sep 2022 19:42:20 GMT
server: cafe
cache-control: private
content-length: 201
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
adservice.google.no/adsid/integrator.js?domain=odiannews.com
142.250.74.98200 OK 100 B URL HTTP/2 adservice.google.no/adsid/integrator.js?domain=odiannews.com
IP 142.250.74.98:0
File type ASCII text, with no line terminators
Hash 917951a58be8c6c6f3680159550ba3c2
21cd25c2a4eb9ec7e0f37021ce7b69e852dab4b4
cd8c45d9a0d98ca2e23d967483ec538bcafa246afdcf434bf60c8257acfacfac
GET /adsid/integrator.js?domain=odiannews.com HTTP/1.1
Host: adservice.google.no
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://odiannews.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: CP="This is not a P3P policy! See http://support.google.com/accounts/answer/151657 for more info."
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
cache-control: private, no-cache, no-store
content-type: application/javascript; charset=UTF-8
x-content-type-options: nosniff
content-disposition: attachment; filename="f.txt"
content-encoding: gzip
date: Sun, 04 Sep 2022 19:42:20 GMT
server: cafe
content-length: 100
x-xss-protection: 0
alt-svc: h3="googleads.g.doubleclick.net:443"; ma=2592000,h3=":443"; ma=2592000,h3-29="googleads.g.doubleclick.net:443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050="googleads.g.doubleclick.net:443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046="googleads.g.doubleclick.net:443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043="googleads.g.doubleclick.net:443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic="googleads.g.doubleclick.net:443"; ma=2592000; v="46,43",quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
adservice.google.com/adsid/integrator.js?domain=odiannews.com
142.250.74.98200 OK 100 B URL HTTP/2 adservice.google.com/adsid/integrator.js?domain=odiannews.com
IP 142.250.74.98:0
File type ASCII text, with no line terminators
Hash 917951a58be8c6c6f3680159550ba3c2
21cd25c2a4eb9ec7e0f37021ce7b69e852dab4b4
cd8c45d9a0d98ca2e23d967483ec538bcafa246afdcf434bf60c8257acfacfac
GET /adsid/integrator.js?domain=odiannews.com HTTP/1.1
Host: adservice.google.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://odiannews.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: CP="This is not a P3P policy! See http://support.google.com/accounts/answer/151657 for more info."
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
cache-control: private, no-cache, no-store
content-type: application/javascript; charset=UTF-8
x-content-type-options: nosniff
content-disposition: attachment; filename="f.txt"
content-encoding: gzip
date: Sun, 04 Sep 2022 19:42:20 GMT
server: cafe
content-length: 100
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash ad56516f7302ec579a2ac494f84eeec2
8eb6930176531f5783ad1211ea528df143368403
e047155909ff78f0ba75cd9ed4ad78a060b33a05610f66f388e7291aecd32d4a
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 04 Sep 2022 19:42:20 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 471 B IP 142.250.74.3:0
Hash cebfe28b301ffe9583a29d4e2e787a07
c312300cb020f4f61edaf4b51394aa889bc815e8
faf415663681aab7051de03f75a3163352ff9cffa4f72e38f56d4e0eb337af4f
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 04 Sep 2022 19:42:20 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash 51df98c169fb7de773301d014bcea4b8
9bdf9bdb9b5eee378e9ac4ec68ca07c665ae4819
c8336f3a2e16c9390b610c612ce9be7c19286f04a6328a29200cbf65db5801c8
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 04 Sep 2022 19:42:20 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
pagead2.googlesyndication.com/getconfig/sodar?sv=200&tid=gda&tv=r20220831&st=env
142.250.74.34200 OK 11 kB URL HTTP/2 pagead2.googlesyndication.com/getconfig/sodar?sv=200&tid=gda&tv=r20220831&st=env
IP 142.250.74.34:0
File type JSON data\012- , ASCII text, with very long lines (14573), with no line terminators
Hash 89c8c06d3f78a3c48a3803d78e70deec
9be3cac49e7716499787cab2adddf83b3263c60a
8e63b28a121aec073b8d7882cdc81e61b34b72ea3287380b2d71ed87d91e3f17
GET /getconfig/sodar?sv=200&tid=gda&tv=r20220831&st=env HTTP/1.1
Host: pagead2.googlesyndication.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://odiannews.com
Connection: keep-alive
Referer: https://odiannews.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
access-control-allow-origin: *
content-type: application/json; charset=UTF-8
x-content-type-options: nosniff
content-disposition: attachment; filename="f.txt"
content-encoding: gzip
date: Sun, 04 Sep 2022 19:42:20 GMT
server: cafe
cache-control: private
content-length: 11062
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 471 B IP 142.250.74.3:0
Hash dfaec7e928dc91512abd43c1353ef09d
dcf5ef29c6eafd834a4c73f178a1be3f6135fb85
a03cbd7e7aa5dda4f5ef6eaf65a3281faaea63674775551ee9a9b62cf380a793
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 04 Sep 2022 19:42:20 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash b15f3f14bd92b7a544ec2347e6810c7b
dd55fd8396d796082edabb5ab6e2d7fb3b51b731
87c27c4b0288f31faa405ba5247767d1f299938551bd284212ee487dbb0deb63
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "87C27C4B0288F31FAA405BA5247767D1F299938551BD284212EE487DBB0DEB63"
Last-Modified: Fri, 02 Sep 2022 20:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=5458
Expires: Sun, 04 Sep 2022 21:13:18 GMT
Date: Sun, 04 Sep 2022 19:42:20 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash b15f3f14bd92b7a544ec2347e6810c7b
dd55fd8396d796082edabb5ab6e2d7fb3b51b731
87c27c4b0288f31faa405ba5247767d1f299938551bd284212ee487dbb0deb63
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "87C27C4B0288F31FAA405BA5247767D1F299938551BD284212EE487DBB0DEB63"
Last-Modified: Fri, 02 Sep 2022 20:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=5458
Expires: Sun, 04 Sep 2022 21:13:18 GMT
Date: Sun, 04 Sep 2022 19:42:20 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash b15f3f14bd92b7a544ec2347e6810c7b
dd55fd8396d796082edabb5ab6e2d7fb3b51b731
87c27c4b0288f31faa405ba5247767d1f299938551bd284212ee487dbb0deb63
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "87C27C4B0288F31FAA405BA5247767D1F299938551BD284212EE487DBB0DEB63"
Last-Modified: Fri, 02 Sep 2022 20:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=5458
Expires: Sun, 04 Sep 2022 21:13:18 GMT
Date: Sun, 04 Sep 2022 19:42:20 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash b15f3f14bd92b7a544ec2347e6810c7b
dd55fd8396d796082edabb5ab6e2d7fb3b51b731
87c27c4b0288f31faa405ba5247767d1f299938551bd284212ee487dbb0deb63
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "87C27C4B0288F31FAA405BA5247767D1F299938551BD284212EE487DBB0DEB63"
Last-Modified: Fri, 02 Sep 2022 20:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=5458
Expires: Sun, 04 Sep 2022 21:13:18 GMT
Date: Sun, 04 Sep 2022 19:42:20 GMT
Connection: keep-alive
tpc.googlesyndication.com/sodar/sodar2.js
142.250.74.33200 OK 6.4 kB URL HTTP/2 tpc.googlesyndication.com/sodar/sodar2.js
IP 142.250.74.33:0
File type ASCII text, with very long lines (1321)
Hash ac906814ed812c4ecdbb624a3bd2f6c3
8e4547eaffaa66a1ee61b36028dbcd7091d0e7de
8ab8cef6156022c4547455defd8252b48b6bcb8b734072849345bb99758705fe
GET /sodar/sodar2.js HTTP/1.1
Host: tpc.googlesyndication.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://odiannews.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-type: text/javascript
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="adspam-signals-scs"
report-to: {"group":"adspam-signals-scs","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/adspam-signals-scs"}]}
content-length: 6386
date: Sun, 04 Sep 2022 19:42:20 GMT
expires: Sun, 04 Sep 2022 19:42:20 GMT
cache-control: private, max-age=3000
etag: "1637097310169751"
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F514b7fbd-ae99-4219-bd03-50e907f92b7b.jpeg
34.120.237.76200 OK 15 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F514b7fbd-ae99-4219-bd03-50e907f92b7b.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash ca50f9c56ff869b0b63ca71b1a9f8170
13b16ca74113dfd52ccf23e6bb39307fc713f984
76b85dd7e018ab4b3d4b2610f90dbca61d0f05d38a3b905fee789af131ae7538
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F514b7fbd-ae99-4219-bd03-50e907f92b7b.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 14855
x-amzn-requestid: 65cf850b-227a-4318-a00e-d7cd4ef81489
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: X5wjuGtpoAMFvvA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6313c7b1-54bc36741984491b0509d173;Sampled=0
x-amzn-remapped-date: Sat, 03 Sep 2022 21:31:29 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: M9Y8U9vqVs1ATiPP9jLPybTJ-xwC--5oiRUpj9-imTWfh6_rmtL5Kw==
via: 1.1 26ca01ec7377e425b59b6a08cb1ec342.cloudfront.net (CloudFront), 1.1 943c6a4d4ee43b18ee91634536f53eae.cloudfront.net (CloudFront), 1.1 google
date: Sat, 03 Sep 2022 21:58:42 GMT
age: 78218
etag: "13b16ca74113dfd52ccf23e6bb39307fc713f984"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fa54e2726-407f-4a8a-8d19-21de249844f5.jpeg
34.120.237.76200 OK 11 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fa54e2726-407f-4a8a-8d19-21de249844f5.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash fc4ceb10dd9fcaab21ae58dcf10c401f
6ce530af682094dc5413db9de02565691fab4da7
84ad58e126cce2ab6b1568ffe89a116bc1de0310bb72d4530eead2fb8191572c
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fa54e2726-407f-4a8a-8d19-21de249844f5.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 11380
x-amzn-requestid: 61f37e21-33a8-49e6-b384-4ca1fcfbffa5
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: Xz8TLFA3oAMFQjg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63117414-42de5c4128eb9e011d848356;Sampled=0
x-amzn-remapped-date: Fri, 02 Sep 2022 03:10:12 GMT
x-amz-cf-pop: SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: sywGj-wLtW091vZYhx1AbRAgljYQWe6LuffDjwTDhEebqVzxpQuzEQ==
via: 1.1 d1151317ba32afe0e6370fd69fed222e.cloudfront.net (CloudFront), 1.1 d01e7742f82df0bbc1fb681d709ed69c.cloudfront.net (CloudFront), 1.1 google
date: Sun, 04 Sep 2022 03:48:58 GMT
age: 57202
etag: "6ce530af682094dc5413db9de02565691fab4da7"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fc410b0d8-b008-47cc-bbf7-a762c06e0fcd.png
34.120.237.76200 OK 8.7 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fc410b0d8-b008-47cc-bbf7-a762c06e0fcd.png
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 6bb4b1d74f1443bc3328301ab3ae6464
2768253dacaaad6cb498c6b2eb7694208b0ce0a6
07dcc95dab7757402998a5a61b540c965ce95c8bd51a814a09438981693b563a
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fc410b0d8-b008-47cc-bbf7-a762c06e0fcd.png HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 8688
x-amzn-requestid: e408351e-ba6c-4e55-815d-449af808282f
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: X5yMEFBLoAMFtqg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6313ca4d-13831d8572a3b3cf54a0e747;Sampled=0
x-amzn-remapped-date: Sat, 03 Sep 2022 21:42:37 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Miss from cloudfront
x-amz-cf-id: GFM9jerDkTPdhlUTm99E7Lpksw2ZGnV81bNVaZLvWSAiRNDNtkZi4g==
via: 1.1 eece508272520f70691e4eebdc5a6dea.cloudfront.net (CloudFront), 1.1 b8c4a4ca04bb1976e020396d211bc8dc.cloudfront.net (CloudFront), 1.1 google
date: Sat, 03 Sep 2022 21:48:07 GMT
etag: "2768253dacaaad6cb498c6b2eb7694208b0ce0a6"
content-type: image/jpeg
age: 78853
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F4c475e9b-fa82-4942-8a4a-d6d3f5061558.webp
34.120.237.76200 OK 11 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F4c475e9b-fa82-4942-8a4a-d6d3f5061558.webp
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 8cdd0826b7d8be62cc2ed532e04e137b
383a0661fa09d9b48745b507389d0505303b6182
f2d04cf1ee9b5a885c246060c1036b21af4ecd3e51e5d05a529dbe0d63f7c2ac
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F4c475e9b-fa82-4942-8a4a-d6d3f5061558.webp HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 10713
x-amzn-requestid: d546a12c-c549-4ad3-80ad-6bad452927d3
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: X5winGzHIAMFTPw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6313c7aa-2060c6611eb4abb777cc17a8;Sampled=0
x-amzn-remapped-date: Sat, 03 Sep 2022 21:31:22 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: FRD_E3IP_SmjPQuoVEijMnLszBb5bhc_1PxJXOlmdyufLKzx33joTw==
via: 1.1 2afae0d44e2540f472c0635ab62c232a.cloudfront.net (CloudFront), 1.1 001e7070d795018d01b93988b9723742.cloudfront.net (CloudFront), 1.1 google
date: Sat, 03 Sep 2022 21:48:07 GMT
age: 78853
etag: "383a0661fa09d9b48745b507389d0505303b6182"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fcd43481e-3c33-4c05-9216-2cc734e840b4.jpeg
34.120.237.76200 OK 9.7 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fcd43481e-3c33-4c05-9216-2cc734e840b4.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 1bdfdf7e36f78f2f0e4d7ede9fdb76a8
babb88202741bbf2d4fd25e0731a4a7a6fcc28f8
949ea108642789e1014150909060f11d99608f082760d0e868a90282f2768d43
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fcd43481e-3c33-4c05-9216-2cc734e840b4.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 9690
x-amzn-requestid: 614c99f8-116a-4603-bcde-3fbd5bfa14d5
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: X5wx1HInIAMFiYA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6313c80b-25c09c3227d72395408782f0;Sampled=0
x-amzn-remapped-date: Sat, 03 Sep 2022 21:32:59 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: 5_jCLvdAC-XR-ax3RUbbx9275KPwACOPtAMxSbmv-aP-Lra4sC5zvw==
via: 1.1 4d7fa73f804f1c93f20cfc24c4b1266e.cloudfront.net (CloudFront), 1.1 001e7070d795018d01b93988b9723742.cloudfront.net (CloudFront), 1.1 google
date: Sat, 03 Sep 2022 21:51:26 GMT
age: 78654
etag: "babb88202741bbf2d4fd25e0731a4a7a6fcc28f8"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fa7142280-0dbd-4c8e-a960-d357c9143af6.jpeg
34.120.237.76200 OK 5.7 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fa7142280-0dbd-4c8e-a960-d357c9143af6.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 10318189f33f071dda64249ab9c8c5bb
e5b5b649a243e5c004d9923d19d4421d1ea96d23
3e775a1990e4d185024faf2fdff7a5eb9063f7ee19784f32fb4f7f10643c8102
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fa7142280-0dbd-4c8e-a960-d357c9143af6.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 5652
x-amzn-requestid: 05fffcb2-43c0-4acf-81b2-1b914459e1e9
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: X5wwHErUIAMFmNw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6313c800-47fe166763992ab271a87aa4;Sampled=0
x-amzn-remapped-date: Sat, 03 Sep 2022 21:32:48 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Miss from cloudfront
x-amz-cf-id: uz2NbcE4AmOvFQkhJALSpXCGizilya0TuFcczfEwtV09cGXtgVNlpQ==
via: 1.1 2afae0d44e2540f472c0635ab62c232a.cloudfront.net (CloudFront), 1.1 cd858042f70b416ca05e042acf3908a4.cloudfront.net (CloudFront), 1.1 google
date: Sat, 03 Sep 2022 22:04:35 GMT
etag: "e5b5b649a243e5c004d9923d19d4421d1ea96d23"
content-type: image/jpeg
age: 77865
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
tpc.googlesyndication.com/sodar/sodar2/225/runner.html
142.250.74.33200 OK 5.0 kB URL HTTP/2 tpc.googlesyndication.com/sodar/sodar2/225/runner.html
IP 142.250.74.33:0
File type HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (2020)
Hash f530c16b248be97e10df228df6a41c24
ca3c3a38bbeef6906682b3e0b2a7be40c08b0925
f45287dcfd79a2411e79f98c834c6f7eff8a281a9b4fdba0124be9d204987786
GET /sodar/sodar2/225/runner.html HTTP/1.1
Host: tpc.googlesyndication.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://odiannews.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="adspam-signals-scs"
report-to: {"group":"adspam-signals-scs","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/adspam-signals-scs"}]}
content-length: 5046
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 01 Sep 2022 07:47:45 GMT
expires: Fri, 01 Sep 2023 07:47:45 GMT
cache-control: public, max-age=31536000
last-modified: Mon, 21 Jun 2021 20:47:05 GMT
content-type: text/html
age: 302075
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash 1278db78948279716d72ac203ad8fb0d
1746b9863b781ed9a0c26a126b9b80d36c903974
8d9e31a35490bc2ebef4c4c2152c89b62491c0cdfc31ec0594bc21fd2e9f43f6
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 04 Sep 2022 19:42:20 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
pagead2.googlesyndication.com/bg/dMUMwKlHRkKFxm324gu_shN2JBGfr2rZRInLP1vMiqM.js
142.250.74.34200 OK 16 kB URL HTTP/2 pagead2.googlesyndication.com/bg/dMUMwKlHRkKFxm324gu_shN2JBGfr2rZRInLP1vMiqM.js
IP 142.250.74.34:0
File type ASCII text, with very long lines (35884)
Hash ab3d3966d2f6ee6fe1ac79fa8e036c0a
415ceaaff99e9d4385afda3963542cbdb75844b2
becbb2cacc4e3edf3d88d13bb050f57776bf6b8426bf118525fdbb2b755d3946
GET /bg/dMUMwKlHRkKFxm324gu_shN2JBGfr2rZRInLP1vMiqM.js HTTP/1.1
Host: pagead2.googlesyndication.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://tpc.googlesyndication.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/botguard-scs
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="botguard-scs"
report-to: {"group":"botguard-scs","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/botguard-scs"}]}
content-length: 15929
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Tue, 30 Aug 2022 19:46:35 GMT
expires: Wed, 30 Aug 2023 19:46:35 GMT
cache-control: public, max-age=31536000
last-modified: Mon, 29 Aug 2022 10:58:00 GMT
content-type: text/javascript
age: 431745
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
www.google.com/recaptcha/api2/aframe
142.250.74.164200 OK 512 B URL HTTP/2 www.google.com/recaptcha/api2/aframe
IP 142.250.74.164:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (783), with no line terminators
Hash ebaa6f750874ad75ac2f3591d5870a59
62c4e3cce20cd3fb190c538fe517d61fd98c084c
70f9719c4d91c05c046c097ae55dca5fc2e32dc670f3c3f4b8dbcf24567b26ae
GET /recaptcha/api2/aframe HTTP/1.1
Host: www.google.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://odiannews.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
cross-origin-resource-policy: cross-origin
cross-origin-embedder-policy: require-corp
report-to: {"group":"recaptcha","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/recaptcha"}]}
expires: Sun, 04 Sep 2022 19:42:20 GMT
date: Sun, 04 Sep 2022 19:42:20 GMT
cache-control: private, max-age=300
content-type: text/html; charset=utf-8
content-security-policy: script-src 'nonce-zPtL0s9T5XSiTeZgnvYwiQ' 'unsafe-inline' 'strict-dynamic' https: http: 'unsafe-eval';object-src 'none';base-uri 'self';report-uri https://csp.withgoogle.com/csp/recaptcha/1
content-encoding: gzip
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
content-length: 512
server: GSE
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
pagead2.googlesyndication.com/pagead/sodar?id=sodar2&v=225&li=gda_r20220831&jk=3926884141710781&rc=
142.250.74.34204 No Content 0 B URL HTTP/2 pagead2.googlesyndication.com/pagead/sodar?id=sodar2&v=225&li=gda_r20220831&jk=3926884141710781&rc=
IP 142.250.74.34:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /pagead/sodar?id=sodar2&v=225&li=gda_r20220831&jk=3926884141710781&rc= HTTP/1.1
Host: pagead2.googlesyndication.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.google.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 204 No Content
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
content-type: text/html; charset=UTF-8
x-content-type-options: nosniff
date: Sun, 04 Sep 2022 19:42:20 GMT
server: cafe
content-length: 0
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
pagead2.googlesyndication.com/pagead/sodar?id=sodar2&v=225&t=2&li=gda_r20220831&jk=3926884141710781&bg=!-_il-LzNAAZTikH4c4o7ACkAdvg8Wih4huz2kQDMfjh5IS4yPtsEs3q9W0v53wwWnfDqCdecrYKXBwIAAADCUgAAAAJoAQcKABaZnLHsrGQBd8O8X2KIAzw7kN6lTYbemQKHNWE9yCy9rWn6Crt-luMgYihXYij7A4MJlD4sXWzED3dOh_avZmyzbtBkz8aqn6_8x-U25MoVIXclh9V9naxVzTtUjTnuH9EVUG9pE5zSetxOwV2AFQsP_vRophpJEkJA7GtTEXHrPwPzPRlZZG9hLy7n3bsiMs3OJZXiqQvBOoefoDp-9WtUpqNcbLPim_pG7qjz15oQJz8Bq9CMfN0OldoFKv8BlkJaML1epXHU0mBBuqpUf-Tg7G51lrDPz7e8M81yX9I66zSKOKgDjeZJW5hwZzGa1v0YV4J4axvYGbQqpmGTyjxLuICqFbmws2UVbfXYfDe2fgwSO-9awGWNkPQTTJ-FW27UniHfwDdap4kd1QxR19ZJlV02TajOLvMLI6KkDkHGUYvaP2vhTgSsJRasOF7VFj1kMYgiJioiE6SVpSzLYh0oFzxhYYddBIGZowDavZM85mfaYCZ8Yn6VKp-QIF5Vgqp6PUVVltK6p_eRoeUgHzK2fGMBcFWyrUpwyYD9Y_IX20OC-PMqGQcjq2nV8TejSuIya6LCiSnkZMf8Wg8GdbHhd9jjy4mUz95ykK6cykdzxH8EM_jqAAgmFIsmv2tryTd4jIQmGN2noGGnj58_58Xb1rXXTcZlJikOKFo3D-8ZRIN4SaefY1EB1ANHS9ffrWURvSHpe8NtCP_rnwcAu84zVkI2aW3Nk01RKPm0Zd707Vo1cDfSqAs_dUk9tMrMoGR_vGryVf-GOEJl6rqX6oWZUFT3M3rjA-pR6bpZlYPGwfw31phXDdGfrjNsvdu_ZYCxrVZNNtbqbSmCNywcqslP9V-tlBSR5zSvkJQzVnSWdTcG8Bow6Ym4jRpNmQgETe0
142.250.74.34204 No Content 0 B URL HTTP/2 pagead2.googlesyndication.com/pagead/sodar?id=sodar2&v=225&t=2&li=gda_r20220831&jk=3926884141710781&bg=!-_il-LzNAAZTikH4c4o7ACkAdvg8Wih4huz2kQDMfjh5IS4yPtsEs3q9W0v53wwWnfDqCdecrYKXBwIAAADCUgAAAAJoAQcKABaZnLHsrGQBd8O8X2KIAzw7kN6lTYbemQKHNWE9yCy9rWn6Crt-luMgYihXYij7A4MJlD4sXWzED3dOh_avZmyzbtBkz8aqn6_8x-U25MoVIXclh9V9naxVzTtUjTnuH9EVUG9pE5zSetxOwV2AFQsP_vRophpJEkJA7GtTEXHrPwPzPRlZZG9hLy7n3bsiMs3OJZXiqQvBOoefoDp-9WtUpqNcbLPim_pG7qjz15oQJz8Bq9CMfN0OldoFKv8BlkJaML1epXHU0mBBuqpUf-Tg7G51lrDPz7e8M81yX9I66zSKOKgDjeZJW5hwZzGa1v0YV4J4axvYGbQqpmGTyjxLuICqFbmws2UVbfXYfDe2fgwSO-9awGWNkPQTTJ-FW27UniHfwDdap4kd1QxR19ZJlV02TajOLvMLI6KkDkHGUYvaP2vhTgSsJRasOF7VFj1kMYgiJioiE6SVpSzLYh0oFzxhYYddBIGZowDavZM85mfaYCZ8Yn6VKp-QIF5Vgqp6PUVVltK6p_eRoeUgHzK2fGMBcFWyrUpwyYD9Y_IX20OC-PMqGQcjq2nV8TejSuIya6LCiSnkZMf8Wg8GdbHhd9jjy4mUz95ykK6cykdzxH8EM_jqAAgmFIsmv2tryTd4jIQmGN2noGGnj58_58Xb1rXXTcZlJikOKFo3D-8ZRIN4SaefY1EB1ANHS9ffrWURvSHpe8NtCP_rnwcAu84zVkI2aW3Nk01RKPm0Zd707Vo1cDfSqAs_dUk9tMrMoGR_vGryVf-GOEJl6rqX6oWZUFT3M3rjA-pR6bpZlYPGwfw31phXDdGfrjNsvdu_ZYCxrVZNNtbqbSmCNywcqslP9V-tlBSR5zSvkJQzVnSWdTcG8Bow6Ym4jRpNmQgETe0
IP 142.250.74.34:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /pagead/sodar?id=sodar2&v=225&t=2&li=gda_r20220831&jk=3926884141710781&bg=!-_il-LzNAAZTikH4c4o7ACkAdvg8Wih4huz2kQDMfjh5IS4yPtsEs3q9W0v53wwWnfDqCdecrYKXBwIAAADCUgAAAAJoAQcKABaZnLHsrGQBd8O8X2KIAzw7kN6lTYbemQKHNWE9yCy9rWn6Crt-luMgYihXYij7A4MJlD4sXWzED3dOh_avZmyzbtBkz8aqn6_8x-U25MoVIXclh9V9naxVzTtUjTnuH9EVUG9pE5zSetxOwV2AFQsP_vRophpJEkJA7GtTEXHrPwPzPRlZZG9hLy7n3bsiMs3OJZXiqQvBOoefoDp-9WtUpqNcbLPim_pG7qjz15oQJz8Bq9CMfN0OldoFKv8BlkJaML1epXHU0mBBuqpUf-Tg7G51lrDPz7e8M81yX9I66zSKOKgDjeZJW5hwZzGa1v0YV4J4axvYGbQqpmGTyjxLuICqFbmws2UVbfXYfDe2fgwSO-9awGWNkPQTTJ-FW27UniHfwDdap4kd1QxR19ZJlV02TajOLvMLI6KkDkHGUYvaP2vhTgSsJRasOF7VFj1kMYgiJioiE6SVpSzLYh0oFzxhYYddBIGZowDavZM85mfaYCZ8Yn6VKp-QIF5Vgqp6PUVVltK6p_eRoeUgHzK2fGMBcFWyrUpwyYD9Y_IX20OC-PMqGQcjq2nV8TejSuIya6LCiSnkZMf8Wg8GdbHhd9jjy4mUz95ykK6cykdzxH8EM_jqAAgmFIsmv2tryTd4jIQmGN2noGGnj58_58Xb1rXXTcZlJikOKFo3D-8ZRIN4SaefY1EB1ANHS9ffrWURvSHpe8NtCP_rnwcAu84zVkI2aW3Nk01RKPm0Zd707Vo1cDfSqAs_dUk9tMrMoGR_vGryVf-GOEJl6rqX6oWZUFT3M3rjA-pR6bpZlYPGwfw31phXDdGfrjNsvdu_ZYCxrVZNNtbqbSmCNywcqslP9V-tlBSR5zSvkJQzVnSWdTcG8Bow6Ym4jRpNmQgETe0 HTTP/1.1
Host: pagead2.googlesyndication.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://odiannews.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 204 No Content
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
content-type: text/html; charset=UTF-8
x-content-type-options: nosniff
date: Sun, 04 Sep 2022 19:42:21 GMT
server: cafe
content-length: 0
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
fonts.googleapis.com/css?family=Roboto%3A100%2C300%2C300i%2C400%2C400i%2C500%2C500i%2C700%2C700i&ver=5.9.4
142.250.74.10200 OK 0 B URL HTTP/2 fonts.googleapis.com/css?family=Roboto%3A100%2C300%2C300i%2C400%2C400i%2C500%2C500i%2C700%2C700i&ver=5.9.4
IP 142.250.74.10:0
GET /css?family=Roboto%3A100%2C300%2C300i%2C400%2C400i%2C500%2C500i%2C700%2C700i&ver=5.9.4 HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://odiannews.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Sun, 04 Sep 2022 19:42:19 GMT
date: Sun, 04 Sep 2022 19:42:19 GMT
cache-control: private, max-age=86400
cross-origin-opener-policy: same-origin-allow-popups
cross-origin-resource-policy: cross-origin
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
odiannews.com/wp-includes/css/dashicons.min.css?ver=5.9.4
212.227.191.17200 OK 0 B URL HTTP/2 odiannews.com/wp-includes/css/dashicons.min.css?ver=5.9.4
IP 212.227.191.17:0
GET /wp-includes/css/dashicons.min.css?ver=5.9.4 HTTP/1.1
Host: odiannews.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://odiannews.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 04 Sep 2022 19:42:19 GMT
content-type: text/css
last-modified: Sun, 26 Sep 2021 07:42:00 GMT
etag: W/"61502448-e688"
strict-transport-security: max-age=15768000; includeSubDomains
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
odiannews.com/wp-content/themes/newscard/assets/js/skip-link-focus-fix.js?ver=20151215
212.227.191.17200 OK 0 B URL HTTP/2 odiannews.com/wp-content/themes/newscard/assets/js/skip-link-focus-fix.js?ver=20151215
IP 212.227.191.17:0
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/newscard/assets/js/skip-link-focus-fix.js?ver=20151215 HTTP/1.1
Host: odiannews.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://odiannews.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 04 Sep 2022 19:42:19 GMT
content-type: application/javascript
x-accel-version: 0.01
last-modified: Tue, 15 Feb 2022 17:12:32 GMT
etag: W/"2ad-5d811a37e7993"
strict-transport-security: max-age=15768000; includeSubDomains
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
odiannews.com/wp-content/themes/newscard/style.css?ver=5.9.4
212.227.191.17200 OK 0 B URL HTTP/2 odiannews.com/wp-content/themes/newscard/style.css?ver=5.9.4
IP 212.227.191.17:0
GET /wp-content/themes/newscard/style.css?ver=5.9.4 HTTP/1.1
Host: odiannews.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://odiannews.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 04 Sep 2022 19:42:19 GMT
content-type: text/css
last-modified: Tue, 15 Feb 2022 17:12:32 GMT
etag: W/"620bdf00-1cf5c"
strict-transport-security: max-age=15768000; includeSubDomains
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
odiannews.com/wp-content/plugins/sassy-social-share/public/css/sassy-social-share-public.css?ver=3.3.43
212.227.191.17200 OK 0 B URL HTTP/2 odiannews.com/wp-content/plugins/sassy-social-share/public/css/sassy-social-share-public.css?ver=3.3.43
IP 212.227.191.17:0
GET /wp-content/plugins/sassy-social-share/public/css/sassy-social-share-public.css?ver=3.3.43 HTTP/1.1
Host: odiannews.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://odiannews.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 04 Sep 2022 19:42:19 GMT
content-type: text/css
last-modified: Thu, 01 Sep 2022 15:55:06 GMT
etag: W/"6310d5da-25e4"
strict-transport-security: max-age=15768000; includeSubDomains
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
odiannews.com/wp-content/plugins/sassy-social-share/public/js/sassy-social-share-public.js?ver=3.3.43
212.227.191.17200 OK 0 B URL HTTP/2 odiannews.com/wp-content/plugins/sassy-social-share/public/js/sassy-social-share-public.js?ver=3.3.43
IP 212.227.191.17:0
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/sassy-social-share/public/js/sassy-social-share-public.js?ver=3.3.43 HTTP/1.1
Host: odiannews.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://odiannews.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 04 Sep 2022 19:42:19 GMT
content-type: application/javascript
last-modified: Thu, 01 Sep 2022 15:55:06 GMT
etag: W/"6310d5da-1d595"
strict-transport-security: max-age=15768000; includeSubDomains
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
odiannews.com/wp-content/plugins/gallery-videos/CSS/ts-vgallery-block.css?ver=5.9.4
212.227.191.17200 OK 0 B URL HTTP/2 odiannews.com/wp-content/plugins/gallery-videos/CSS/ts-vgallery-block.css?ver=5.9.4
IP 212.227.191.17:0
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/gallery-videos/CSS/ts-vgallery-block.css?ver=5.9.4 HTTP/1.1
Host: odiannews.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://odiannews.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 04 Sep 2022 19:42:19 GMT
content-type: text/css
x-accel-version: 0.01
last-modified: Wed, 24 Aug 2022 15:55:06 GMT
etag: W/"375-5e6feb46a298d"
strict-transport-security: max-age=15768000; includeSubDomains
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
odiannews.com/
212.227.191.17200 OK 0 B IP 212.227.191.17:0
Analyzer Verdict Alert fortinet Phishing
GET / HTTP/1.1
Host: odiannews.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1
HTTP/2 200 OK
server: nginx
date: Sun, 04 Sep 2022 19:42:19 GMT
content-type: text/html; charset=UTF-8
link: <https://odiannews.com/wp-json/>; rel="https://api.w.org/", <https://odiannews.com/wp-json/wp/v2/pages/5>; rel="alternate"; type="application/json", <https://odiannews.com/>; rel=shortlink
strict-transport-security: max-age=15768000; includeSubDomains
x-powered-by: PHP/7.4.30, PleskLin
content-encoding: br
X-Firefox-Spdy: h2